Cisco Clamav vulnerabilities

CVE-2019-1788 [MEDIUM] CWE-20 CVE-2019-1788: A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVir A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper input and validation checking mechanisms for OLE2 f

CVE-2019-1787 [MEDIUM] CWE-20 CVE-2019-1787: A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (Clam A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of proper data handling mechanisms within the device buffer whi

CVE-2018-15378 [MEDIUM] CWE-125 CVE-2018-15378: A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of ser A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11()" function (libclamav/mew.c), which can be exploited to trigger an invalid read memory access via a specially crafted EXE file.